Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

AWS secrets engine generating session tokens #23690

Merged
merged 34 commits into from
Nov 8, 2023
Merged

AWS secrets engine generating session tokens #23690

Changes from 1 commit
Commits
Show all changes
34 commits
Select commit Hold shift + click to select a range
20dd50f
AWS Secret Engine: Support Session Tokens
grahamc Oct 5, 2021
0426428
Add a test for SessionTokens, untested: I couldn't get any of the tes…
grahamc Oct 5, 2021
65a99ed
add a changelog entry
grahamc Oct 5, 2021
db4c53e
Document session tokens
grahamc Oct 5, 2021
72e3769
Update the JS for session tokens
grahamc Oct 5, 2021
1a4afd5
Add suggestions
robmonte Oct 12, 2023
57c4199
Fix typo
robmonte Oct 12, 2023
3f6e24e
Fix broken link
robmonte Oct 12, 2023
4c8ef89
Fix backticks
robmonte Oct 14, 2023
1bc9bf0
Disallow setting aws role or policy on a session token-based role
robmonte Oct 16, 2023
c491b92
Rename security token to session token
robmonte Oct 16, 2023
a8b24ec
Update check
robmonte Oct 16, 2023
d8ba1a7
Adjust docs
robmonte Oct 17, 2023
1051683
use time.Until
robmonte Oct 17, 2023
676ed91
Add changelog
robmonte Oct 17, 2023
a84fec9
Change security_token to session_token in all locations
robmonte Oct 17, 2023
24957d0
Remove original changelog file
robmonte Oct 17, 2023
f317c98
Undo auth docs change
robmonte Oct 17, 2023
1f5ca35
Update api docs
robmonte Oct 17, 2023
7fdb5d4
Fix error capitalization
robmonte Oct 17, 2023
69e5059
Add MFA code support
robmonte Oct 18, 2023
7ad5b85
Update wording
robmonte Oct 19, 2023
ada5c08
Update wording
robmonte Oct 19, 2023
eec27c9
Update website/content/docs/secrets/aws.mdx
robmonte Oct 20, 2023
04c10b2
Add lines between note, split long line
robmonte Oct 20, 2023
0a2d59d
Fix another page's warning tag
robmonte Oct 20, 2023
7b32e11
Merge branch 'main' into aws-session-token-fork
robmonte Oct 20, 2023
7489461
Add security_token back to responses, set it as deprecated
robmonte Oct 24, 2023
0eb2593
Merge branch 'main' into aws-session-token-fork
robmonte Oct 24, 2023
3b0dbc4
Wording
robmonte Oct 24, 2023
a6d9f23
Add ttl field to response
robmonte Oct 31, 2023
de36e92
Update builtin/logical/aws/secret_access_keys.go
robmonte Nov 4, 2023
cc21967
Update builtin/logical/aws/path_roles.go
robmonte Nov 4, 2023
653dc8f
Mention ARN in field description
robmonte Nov 4, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Update wording
  • Loading branch information
@robmonte
robmonte committed Oct 19, 2023
commit ada5c08ade5493c7586474edfb76882bc004162f
4 changes: 2 additions & 2 deletions website/content/api-docs/secret/aws.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -305,7 +305,7 @@ updated with the new attributes.
attached.

- `mfa_serial_number` `(string)` - The ARN or hardware device number of the device configured
to the IAM user for multi-factor authentication. Only required if IAM user has an MFA device
to the IAM user for multi-factor authentication. Only required if the IAM user has an MFA device
set up in AWS.

Legacy parameters:
Expand Down Expand Up @@ -586,7 +586,7 @@ credentials retrieved through `/aws/creds` must be of the `iam_user` type.

- `mfa_code` `(string)` - The TOTP generated by the MFA device configured on the IAM user and set
on the Vault role. This is optional based on whether the Vault role has the `mfa_serial_number`
field set or not.
field set or not. Only required if the Vault role has the `mfa_serial_number` set on it.

### Sample AssumeRole request

Expand Down
Loading